cleantalk
Vulnerabilities and Security Researches

Google Reviews WordPress Plugin (Widget to add and display reviews), 6c2ad8e1f17e8fda8cdcf6e1b760d67c74bba1a6

CVE, Research URL

6c2ad8e1f17e8fda8cdcf6e1b760d67c74bba1a6

Home page URL

Security reports for Google Reviews WordPress Plugin (Widget to add and display reviews)

Application

Google Reviews WordPress Plugin (Widget to add and display reviews)

Published on
Jul 18, 2023
Research Description
Google Reviews WordPress Plugin (Widget to add and display reviews) [embedder-for-google-reviews] < 1.5.12 WordPress Embedder for Google Reviews Plugin < 1.5.12 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Embedder for Google Reviews Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.5.12.
Affected versions
Min -, max 1.5.12.
Status
vulnerable
Previous vulnerability researches
Pdf Embedder Fay (CVE-2024-51795) , Nov 11, 2024
LSD Google Maps Embedder (CVE-2025-23871) , Jan 18, 2025
Embedder (CVE-2025-3417) , Apr 11, 2025
Prezi Embedder (CVE-2025-26538) , Feb 16, 2025
Google Reviews WordPress Plugin (Widget to add and display reviews) (6c2ad8e1f17e8fda8cdcf6e1b760d67c74bba1a6) , Jun 07, 2024
New vulnerability
Gutenverse &#8211; Gutenberg Blocks &#8211; Page Builder for Site Editor (CVE-2025-7727) , Aug 07, 2025
Flex Guten &#8211; A Multipurpose Gutenberg Blocks Plugin (CVE-2025-6256) , Aug 07, 2025
Simple File List (CVE-2025-54021) , Aug 07, 2025
Newsletters (CVE-2025-54034) , Aug 07, 2025
FileBird &#8211; WordPress Media Library Folders &amp; File Manager (CVE-2025-6986) , Aug 07, 2025